CLAIMS 



1. Method for issuing an electronic identity 
for an entity from an identity registration authority, 
the method comprising the steps of: 

a) issuing a first electronic identity for said 

entity ; 

b) creating a request for a second electronic 
identity for said entity, the request including an 
identifier of said entity; 

c) sending said request to said identity regis- 
tration authority; 

d) in response to said request, creating an 
identification response; 

e) sending said identification response to said 

entity; 

f) verifying an acceptability of said identifi- 
cation response by said entity; 

g) in response said verifying, if said identi- 
fication response is acceptable, signing digitally said 
identification response by saxd first entity; 

h) sending said signed response to said iden- 
tity registration authority; 

i) verifying a validity of said digital signa- 
ture and said identification response in said signed 
response; and 

j) in response to said verifying, if said digi- 
tal signature and identification response are valid, 
issuing a second identity based on said first identity. 

2. The method of claim 1 further comprising a 
second entity by which said first entity digitally 
signs said identification response. 

3. The method of claim 1 or 2 further compris- 
ing the steps of : 

checking if the information of said second en- 
tity is available using said identifier; and 
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in response said checking, if said information 
, a not available, inquiring che information of saic 



second entity from said first encicy. 

4. The method of claim 2 or 3 wherein said sec- 



ond entity is in control of said first entit 

5 The method of claim 3 wherein said informs 
Cion of said second entity comprises one or more from 
che set containing a unique address of said second en- 
city the name of the holder of said second entity and 
previous identity or identities of said second entity 

6. The method of claim 1 further comprising the 

step of : 

establishing and encrypting a communication 
channel between said first entity and said identity 
> registration authority to ensure confidential commum- 

cation there between. 

7. The method of claim 1 further comprising the 

SCSP ° f Scoring said issued second identity to the da- 
0 tabase of said identity registration authority. 

8. The method of claim 1 further comprising che 

SCSP ° f 'scoring said issued second identity to the da- 
tabase of the issuer of said first electronic identity. 
, s 9. The method of claim ! further comprising the 

^'combining said first and said second electronic 
identities to form a combined electronic identity; and 

storing said combined electronic identity to 

3 0 the database. 

10. The method of claim 1 further comprising 

the step of = 

sending said issued second identity to said en- 

35 C1CY " ix. The method of claim 1 further comprising 
the step of: 
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sending said issued second identity co a third 

party. 

12. The method of claim 1 before the step of 
issuing said second identity further comprising the 

5 steps of: 

checking if additional guarantees for ensuring 
a validity of the first identity are to be acquired; 
and 

in response to said checking, if additional 
10 guarantees are needed, acquiring additional guarantees. 

13. The method of claim 1 further comprising 

the steps of: 

adding a time stamp to said issued second iden- 
tity; and 

I5 storing said time stamped second identity to 

the database of said registration authority. 

14. The method of claim 1 further comprising 
the step of : 

adding into said time stamp a expiration date 
20 of said second electronic identity. 

15. The method of claim 1 further comprising 

the steps of; 

adding a notarization to said issued second 

identity; and 

25 scoring said notarized second identity to the 

database of said registration authority. 

16. The method of claim 1 further comprising 

the steps of: 

inquiring a further identifier code to be added 

30 into said signed identification response 

receiving said identifier code at said regis- 
tration authority; and 

verifying the validity of said identifier code 
at said registration authority. 
35 17. The method of claim 16 wherein said identi- 

fier code includes one or' more from the set containing 
biometric code of said first entity. a predetermined 
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character scring, a fingerprint of the encicy's public 
key, random number, certificate, and a. hash code of che 
shared secret between said first entity and said regis- 
tration authority. 
5 IS. The method of claim l further comprising 

the steps of: 

creating a first hash code from said identity 

request at registration authority; 

sending said first hash code to said second en- 

10 tiny; 

creating a second hash code from said identity 
request by said second entity; and 

verifying a validity of said first hash code by 
comparing it to said second hash code before the sign- 
15 ing of said response. 

19. The method of claim 1 or 2 before the step 
of issuing further comprising the steps of: 

sending a confirmation message to the address 
specified in said additional information of said en- 
20 city; 

receiving a confirmation response to said con- 
firmation message at said registration authority; and 

verifying the validity of said confirmation re- 
sponse . 

25. 20. The method of claim 19 before the step of 

issuing further comprising the step of: 

canceling said issuing of said second elec- 
tronic identity if said confirmation response is not 
received in a predetermined time period. 
30 21. The method of claim 1 wherein said request 

for issuing said second certificate for said entity is 
initiated by said third party. 

22. The method of claim 1 wherein said request 
for issuing said second certificate for said entity is 
35 initiated by said second entity. 
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23. The method of claim 2 wherein said request 
is digitally signed by said first entity before sending 

said request. 

24. The method of claim 2 wherein said request 

is encrypted before sending said request. 

25. The method of claim 1 further comprising 

the step of : 

journalizing a log of all transactions during 
the issue process of said second electronic identity. 

26. The method of claim 2 wherein said second 
entity is one of the following set including mobile 
terminal, mobile phone, personal computer, set-top box, 
smart card, camper proof device, security token, soft- 
ware agent, pager, terminal equipment, and personal 

IS digital assistant (PDA) . 
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